openssl.pod - OpenGrok cross reference for /third_party/openssl/doc/man1/openssl.pod

Lines Matching +full:- +full:b
5 openssl - OpenSSL command line program
9 B<openssl>
14 B<openssl> B<no->I<XXX> [ I<options> ]
22 The B<openssl> program is a command line program for using the various
23 cryptography functions of OpenSSL's B<crypto> library from the shell.
37 The B<openssl> program provides a rich variety of commands (I<command> in
43 (e.g., L<openssl-x509(1)>). The subcommand L<openssl-list(1)> may be used to list
46 The command B<no->I<XXX> tests whether a command of the
48 returns 0 (success) and prints B<no->I<XXX>; otherwise it returns 1
49 and prints I<XXX>.  In both cases, the output goes to B<stdout> and
50 nothing is printed to B<stderr>.  Additional command line arguments
53 availability of ciphers in the B<openssl> program.  (B<no->I<XXX> is
54 not able to detect pseudo-commands such as B<quit>,
55 B<list>, or B<no->I<XXX> itself.)
60 arguments and have a B<-config> option to specify that file.
62 storage area, which can be determined from the L<openssl-version(1)>
63 command using the B<-d> or B<-a> option.
64 The environment variable B<OPENSSL_CONF> can be used to specify a different
75 =item B<asn1parse>
79 =item B<ca>
83 =item B<ciphers>
87 =item B<cms>
91 =item B<crl>
95 =item B<crl2pkcs7>
99 =item B<dgst>
102 L<openssl-mac(1)>.
104 =item B<dhparam>
106 Generation and Management of Diffie-Hellman Parameters. Superseded by
107 L<openssl-genpkey(1)> and L<openssl-pkeyparam(1)>.
109 =item B<dsa>
113 =item B<dsaparam>
116 L<openssl-genpkey(1)> and L<openssl-pkeyparam(1)>.
118 =item B<ec>
122 =item B<ecparam>
126 =item B<enc>
130 =item B<engine>
134 =item B<errstr>
138 =item B<fipsinstall>
142 =item B<gendsa>
145 L<openssl-genpkey(1)> and L<openssl-pkey(1)>.
147 =item B<genpkey>
151 =item B<genrsa>
153 Generation of RSA Private Key. Superseded by L<openssl-genpkey(1)>.
155 =item B<help>
159 =item B<info>
163 =item B<kdf>
167 =item B<list>
171 =item B<mac>
175 =item B<nseq>
179 =item B<ocsp>
183 =item B<passwd>
187 =item B<pkcs12>
191 =item B<pkcs7>
195 =item B<pkcs8>
199 =item B<pkey>
203 =item B<pkeyparam>
207 =item B<pkeyutl>
211 =item B<prime>
215 =item B<rand>
217 Generate pseudo-random bytes.
219 =item B<rehash>
223 =item B<req>
227 =item B<rsa>
231 =item B<rsautl>
234 by  L<openssl-pkeyutl(1)>.
236 =item B<s_client>
241 internally uses mostly all functionality of the OpenSSL B<ssl> library.
243 =item B<s_server>
248 functionality of the OpenSSL B<ssl> library.  It provides both an own command
250 facility to emulate an SSL/TLS-aware webserver.
252 =item B<s_time>
256 =item B<sess_id>
260 =item B<smime>
264 =item B<speed>
268 =item B<spkac>
272 =item B<srp>
276 =item B<storeutl>
280 =item B<ts>
284 =item B<verify>
287 See also the L<openssl-verification-options(1)> manual page.
289 =item B<version>
293 =item B<x509>
303 =item B<blake2b512>
305 BLAKE2b-512 Digest
307 =item B<blake2s256>
309 BLAKE2s-256 Digest
311 =item B<md2>
315 =item B<md4>
319 =item B<md5>
323 =item B<mdc2>
327 =item B<rmd160>
329 RMD-160 Digest
331 =item B<sha1>
333 SHA-1 Digest
335 =item B<sha224>
337 SHA-2 224 Digest
339 =item B<sha256>
341 SHA-2 256 Digest
343 =item B<sha384>
345 SHA-2 384 Digest
347 =item B<sha512>
349 SHA-2 512 Digest
351 =item B<sha3-224>
353 SHA-3 224 Digest
355 =item B<sha3-256>
357 SHA-3 256 Digest
359 =item B<sha3-384>
361 SHA-3 384 Digest
363 =item B<sha3-512>
365 SHA-3 512 Digest
367 =item B<shake128>
369 SHA-3 SHAKE128 Digest
371 =item B<shake256>
373 SHA-3 SHAKE256 Digest
375 =item B<sm3>
387 here may be present. See L<openssl-enc(1)> for more information.
391 =item B<aes128>, B<aes-128-cbc>, B<aes-128-cfb>, B<aes-128-ctr>, B<aes-128-ecb>, B<aes-128-ofb>
393 AES-128 Cipher
395 =item B<aes192>, B<aes-192-cbc>, B<aes-192-cfb>, B<aes-192-ctr>, B<aes-192-ecb>, B<aes-192-ofb>
397 AES-192 Cipher
399 =item B<aes256>, B<aes-256-cbc>, B<aes-256-cfb>, B<aes-256-ctr>, B<aes-256-ecb>, B<aes-256-ofb>
401 AES-256 Cipher
403 =item B<aria128>, B<aria-128-cbc>, B<aria-128-cfb>, B<aria-128-ctr>, B<aria-128-ecb>, B<aria-128-of…
405 Aria-128 Cipher
407 =item B<aria192>, B<aria-192-cbc>, B<aria-192-cfb>, B<aria-192-ctr>, B<aria-192-ecb>, B<aria-192-of…
409 Aria-192 Cipher
411 =item B<aria256>, B<aria-256-cbc>, B<aria-256-cfb>, B<aria-256-ctr>, B<aria-256-ecb>, B<aria-256-of…
413 Aria-256 Cipher
415 =item B<base64>
419 =item B<bf>, B<bf-cbc>, B<bf-cfb>, B<bf-ecb>, B<bf-ofb>
423 =item B<camellia128>, B<camellia-128-cbc>, B<camellia-128-cfb>, B<camellia-128-ctr>, B<camellia-128…
425 Camellia-128 Cipher
427 =item B<camellia192>, B<camellia-192-cbc>, B<camellia-192-cfb>, B<camellia-192-ctr>, B<camellia-192…
429 Camellia-192 Cipher
431 =item B<camellia256>, B<camellia-256-cbc>, B<camellia-256-cfb>, B<camellia-256-ctr>, B<camellia-256…
433 Camellia-256 Cipher
435 =item B<cast>, B<cast-cbc>
439 =item B<cast5-cbc>, B<cast5-cfb>, B<cast5-ecb>, B<cast5-ofb>
443 =item B<chacha20>
447 =item B<des>, B<des-cbc>, B<des-cfb>, B<des-ecb>, B<des-ede>, B<des-ede-cbc>, B<des-ede-cfb>, B<des…
451 =item B<des3>, B<desx>, B<des-ede3>, B<des-ede3-cbc>, B<des-ede3-cfb>, B<des-ede3-ofb>
453 Triple-DES Cipher
455 =item B<idea>, B<idea-cbc>, B<idea-cfb>, B<idea-ecb>, B<idea-ofb>
459 =item B<rc2>, B<rc2-cbc>, B<rc2-cfb>, B<rc2-ecb>, B<rc2-ofb>
463 =item B<rc4>
467 =item B<rc5>, B<rc5-cbc>, B<rc5-cfb>, B<rc5-ecb>, B<rc5-ofb>
471 =item B<seed>, B<seed-cbc>, B<seed-cfb>, B<seed-ecb>, B<seed-ofb>
475 =item B<sm4>, B<sm4-cbc>, B<sm4-cfb>, B<sm4-ctr>, B<sm4-ecb>, B<sm4-ofb>
490 =item B<-help>
495 =item B<-->
500  openssl verify [flags...] -- -cert1.pem...
506 See L<openssl-format-options(1)> for manual page.
510 See the L<openssl-passphrase-options(1)> manual page.
515 about the state of the random-number generator in a file that was loaded
522 every use of B<-rand> should be paired with B<-writerand>.
526 =item B<-rand> I<files>
530 Multiple files can be specified separated by an OS-dependent character.
531 The separator is C<;> for MS-Windows, C<,> for OpenVMS, and C<:> for
535 =item B<-writerand> I<file>
544 See the L<openssl-verification-options(1)> manual page.
548 See the L<openssl-namedisplay-options(1)> manual page.
564 =item B<-ssl3>, B<-tls1>, B<-tls1_1>, B<-tls1_2>, B<-tls1_3>, B<-no_ssl3>, B<-no_tls1>, B<-no_tls1_…
570 the B<no_> options.
572 =item B<-dtls>, B<-dtls1>, B<-dtls1_2>
575 With B<-dtls>, clients will negotiate any supported DTLS protocol version.
576 Use the B<-dtls1> or B<-dtls1_2> options to support only DTLS1.0 or DTLS1.2,
585 =item B<-engine> I<id>
589 command-specific documentation or it is configured to do so, as described in
592 The engine will be used for key ids specified with B<-key> and similar
593 options when an option like B<-keyform engine> is given.
603 Options specifying keys, like B<-key> and similar, can use the generic
616     -key org.openssl.engine:pkcs11:label_some-private-key
623     -key pkcs11:object=some-private-key;pin-value=1234
629 =item B<-provider> I<name>
635 "MODULESDIR" path, B<OPENSSL_MODULES> environment variable, or the path
636 specified by B<-provider-path> is prepended to relative paths.
639 =item B<-provider-path> I<path>
642 Equivalently, the B<OPENSSL_MODULES> environment variable may be set.
644 =item B<-propquery> I<propq>
656 about specific commands, see L<openssl-engine(1)>,
657 L<openssl-rehash(1)>, and L<tsget(1)>.
666 see L<openssl-env(7)>.
670 =item B<OPENSSL_TRACE=>I<name>[,...]
682 =item B<TRACE>
686 =item B<INIT>
690 =item B<TLS>
694 =item B<TLS_CIPHER>
698 =item B<CONF>
702 =item B<ENGINE_TABLE>
708 =item B<ENGINE_REF_COUNT>
713 =item B<PKCS5V2>
717 =item B<PKCS12_KEYGEN>
721 =item B<PKCS12_DECRYPT>
725 =item B<X509V3_POLICY>
730 =item B<BN_CTX>
734 =item B<CMP>
738 =item B<STORE>
742 =item B<DECODER>
746 =item B<ENCODER>
750 =item B<REF_COUNT>
760 L<openssl-asn1parse(1)>,
761 L<openssl-ca(1)>,
762 L<openssl-ciphers(1)>,
763 L<openssl-cms(1)>,
764 L<openssl-crl(1)>,
765 L<openssl-crl2pkcs7(1)>,
766 L<openssl-dgst(1)>,
767 L<openssl-dhparam(1)>,
768 L<openssl-dsa(1)>,
769 L<openssl-dsaparam(1)>,
770 L<openssl-ec(1)>,
771 L<openssl-ecparam(1)>,
772 L<openssl-enc(1)>,
773 L<openssl-engine(1)>,
774 L<openssl-errstr(1)>,
775 L<openssl-gendsa(1)>,
776 L<openssl-genpkey(1)>,
777 L<openssl-genrsa(1)>,
778 L<openssl-kdf(1)>,
779 L<openssl-list(1)>,
780 L<openssl-mac(1)>,
781 L<openssl-nseq(1)>,
782 L<openssl-ocsp(1)>,
783 L<openssl-passwd(1)>,
784 L<openssl-pkcs12(1)>,
785 L<openssl-pkcs7(1)>,
786 L<openssl-pkcs8(1)>,
787 L<openssl-pkey(1)>,
788 L<openssl-pkeyparam(1)>,
789 L<openssl-pkeyutl(1)>,
790 L<openssl-prime(1)>,
791 L<openssl-rand(1)>,
792 L<openssl-rehash(1)>,
793 L<openssl-req(1)>,
794 L<openssl-rsa(1)>,
795 L<openssl-rsautl(1)>,
796 L<openssl-s_client(1)>,
797 L<openssl-s_server(1)>,
798 L<openssl-s_time(1)>,
799 L<openssl-sess_id(1)>,
800 L<openssl-smime(1)>,
801 L<openssl-speed(1)>,
802 L<openssl-spkac(1)>,
803 L<openssl-srp(1)>,
804 L<openssl-storeutl(1)>,
805 L<openssl-ts(1)>,
806 L<openssl-verify(1)>,
807 L<openssl-version(1)>,
808 L<openssl-x509(1)>,
811 L<openssl-env(7)>.
818 The B<list> -I<XXX>B<-algorithms> options were added in OpenSSL 1.0.0;
822 The B<-issuer_checks> option is deprecated as of OpenSSL 1.1.0 and
825 The B<-xcertform> and B<-xkeyform> options
834 Copyright 2000-2022 The OpenSSL Project Authors. All Rights Reserved.